South Korea’s privacy regulator said on Thursday (June 11) that the country will fine e-commerce giant Coupang 625 billion won ($409.30 million) over a massive leak of customer information last year and illegal collection of personal information, in the country’s largest data breach penalty on a company.
The Personal Information Protectin Commission said the New York-listed company had leaked personal data of more than 33 million customers and failed to detect the breach within the 72 hours required by the law.
By infosecbulletin
/ Thursday , July 2 2026
Nepal has started a 'Hall of Fame' program to honor cybersecurity researchers who safely report security flaws in government digital...
Read More
By infosecbulletin
/ Thursday , July 2 2026
The Shadowserver Foundation found about 950 Oracle E-Business Suite (EBS) systems on the internet around the world. This discovery came...
Read More
By infosecbulletin
/ Thursday , July 2 2026
The Indian government issued a notice WhatsApp planned to roll out its new 'username' feature. They are worried about fake...
Read More
By infosecbulletin
/ Wednesday , July 1 2026
Cybersecurity researchers have warned of a "massive, ongoing, automated password spray attack" aimed at Microsoft's Azure command-line interface (CLI), compromising...
Read More
By infosecbulletin
/ Wednesday , July 1 2026
Chrome 151 has a new update that fixes 382 security problems. This includes 15 critical issues that could allow attackers...
Read More
By infosecbulletin
/ Wednesday , July 1 2026
Apple released security updates on Monday for iOS, macOS, and Safari. These updates fix more than thirty issues, including four...
Read More
By infosecbulletin
/ Tuesday , June 30 2026
Attackers are now using a flaw (called CVE-2026-46817) in the Oracle E-Business Suite (EBS) financial app, according to the security...
Read More
By infosecbulletin
/ Tuesday , June 30 2026
WhatsApp is about to release a big update that may change how people communicate on the app. Soon, users can...
Read More
By infosecbulletin
/ Monday , June 29 2026
The Linux Foundation said on Thursday that they are starting a new project to fix flaws in open source software...
Read More
By infosecbulletin
/ Sunday , June 28 2026
KDDI Corporation, a Japanese telecom company, revealed a data breach. Hackers got into one of its email systems that five...
Read More
“This accident occurred due to Coupang’s lack of safety measures and systems, not sophisticated hacking,” Song Kyung-hee, the chairperson of the privacy regulator, told a briefing on Thursday.
“We have decided to impose a total of 624.68 billion won in fines … on Coupang for violating safety obligations and collecting personal data without legal grounds,” a Personal Information Protection Commission statement said.
“Inadequate basic safeguards, including poor management of authentication signing keys and lax access controls” resulted in the personal data of around 37.5 million users being exposed, the commission said.
The fine amounts to 1.4% of Coupang’s revenue of 45 trillion won in 2025, according to Reuters’ calculation. After the fine was announced, Coupang apologised for having caused concern to the public and its customers.
However, the company said that “we regret that our proactive measures to prevent secondary harm from last year’s data leak incident, as well as our explanations based on clear facts, were not sufficiently reflected” in the regulator’s decision.
ShinyHunters claim stolen data from 100+ org via oracle PeopleSoft servers